Threaded View

Remote access to Zimbra 8.0 LDAP through SASL

Hello Forum,
I am working with an "out of the box" installation of Z. 8.0 on Ubuntu 10.04. This is a licensed installation.
I need to allow a remote, 3rd party, SPAM filter to query the Z. OpenLDAP server so it can verify user accounts.
It appears, however, that there is some sort of configuration conflict between LDAP and SASL that is causing remote client
authentication to fail.

Example:
If I run ldapsearch with the -x switch ( use simple authentication instead of SASL) I will get a successful
response from the server:
$ ldapsearch -v -x
-H 'ldap://<server IP>:389'
-D 'uid=testuser.one,ou=people,dc=mydomain,dc=org'
-w '<password>'
"mail=someuser@mydomain.org"

If run the same ldapsearch without the -x switch then SASL is engaged and the authentication fails.
Here is an example, with the debug switch, -d 3, to generate detailed information:
$ ldapsearch -v -d 3
-H 'ldap://<server IP>:389'
-D 'uid=testuser.one,ou=people,dc=mydomain,dc=org'
-w '<password>'
"mail=someuser@mydomain.org"

Looking through the forum threads there does not seem to be much information on this
problem and, with 8.0, nothing that is current. I suspect that this problem can be solved
by adjusting the SASL and or LDAP configuration but I'm afraid to to this w/o advice since
I'm not sure how that might affect the operation of the ZCS as a whole. I've not submitted
a support request on this as yet; can anybody give me some pointers on how to fix?